FindSomething

AntiDebug Breaker

JavaScript Reverse Tools -- JS逆向工具 如果你正在为反调试、请求加密、Vue 渗透测试而头疼，不妨试试 AntiDebug Breaker！ 这款插件提供了多种强大的Hook脚本，助你轻松应对各种调试难题： - 反反调试：清除无限 debugger 的 Bypass Debugger，防止 console.log 等方法被重写的 hook log，让调试更顺畅。 - 加解密分析：Hook CryptoJS 和 Hook JSEncrypt RSA自动捕获密钥、加解密方式，无视混淆，快速定位请求加密的核心逻辑。 - 多种 Hook 脚本：覆盖 document.cookie、XMLHttpRequest.setRequestHeader 等关键方法，全面协助 JS 逆向分析。 - Vue 渗透测试：一键获取路由信息、清除路由守卫，轻松突破 Vue 的调试限制。 Github仓库：https://github.com/0xsdeo/AntiDebug_Breaker

Source Detector

A powerful tool for developers to automatically detect, collect, and analyze source maps and CRX files from websites Source Detector is an open-source Chrome extension that helps developers and security researchers inspect client-side web assets directly in Chrome Key Functions • Detect: Automatically find source maps and CRX package files. • Explore: Browse collected source files and related assets. • Review: Use a structured workflow to examine versioned artifacts. • Export: Download individual files or full sets for offline analysis. Target Audience • Front-end Developers: Debug production assets efficiently. • Security Researchers: Validate exposed source artifacts. • Extension Developers: Inspect CRX package structures. • Technical Users: Analyze web application architecture. Core Benefits • Privacy First: Local storage in-browser; no account required. • Efficiency: Fast inspection with a repeatable review flow. • Transparency: Fully open-source. Highlights • Automatic source map detection. • Artifact inspection by site and version. • Export capabilities for deep analysis. • Local-first, account-free workflow. Changelog v1.4.1 • Added deeper GA4-ready instrumentation groundwork for the new navigation primitives and surfaces. • Follow-up UI/theme refinements landed after the 1.4.0 release cycle. • Cleaned local debug artifacts from the repo path and ignored env/debug residue to reduce pollution. Changelog v1.3.3 • Metadata Sync: Synced version metadata across UI and manifest. • Consistency: Improved release reporting for popup, Source Explorer, and analytics. • Stability: Maintained validated build and scanner workflows.

Starphish | AI-powered phishing protection

AI-powered phishing protection for a brighter, safer online experience 🚀 Make the most out of your internet security, by personalizing your own phishing protection! Make use of one of the existing configurations, or create your own, from the brands you frequent the most! Offering a complex and reliable real-time AI scanning mechanism, you won't have to count on other people to report a website so you can be protected! Starphish is aided by brand recognition and personalized protection, so that it can offer you a much better suited zero-day phishing protection. All results contain a percentage of certainty provided by the machine learning algorithm, giving you an idea of how precautious to be while entering credentials. While false positives can happen, or malicious pages go undetected, any user has the free option to sign up and create his own configurations, containing his trusted brands. That way, whenever a phishing page pops up, the extension will tell you if we found any similarities with any of your active protected brands, offering an extra shield for your frequently visited sites.

Shodan

The Shodan plugin tells you where the website is hosted (country, city), who owns the IP and what other services/ ports are open. The Shodan plugin for Chrome automatically checks whether Shodan has any information for the current website. Is the website also running FTP, DNS, SSH or some unusual service? With this plugin you can see all the info that Shodan has collected on a given website/ domain.